Vulnerabilities > Aubio

DATE CVE VULNERABILITY TITLE RISK
2019-06-07 CVE-2018-19802 NULL Pointer Dereference vulnerability in Aubio
aubio v0.4.0 to v0.4.8 has a new_aubio_onset NULL pointer dereference.
network
low complexity
aubio CWE-476
7.5
2019-06-07 CVE-2018-19801 NULL Pointer Dereference vulnerability in Aubio
aubio v0.4.0 to v0.4.8 has a NULL pointer dereference in new_aubio_filterbank via invalid n_filters.
network
low complexity
aubio CWE-476
7.5
2019-06-07 CVE-2018-19800 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Aubio
aubio v0.4.0 to v0.4.8 has a Buffer Overflow in new_aubio_tempo.
network
low complexity
aubio CWE-119
critical
9.8
2018-07-23 CVE-2018-14523 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in aubio 0.4.6.
network
low complexity
aubio opensuse suse CWE-125
8.8
2018-07-23 CVE-2018-14522 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in aubio 0.4.6.
network
low complexity
aubio opensuse suse CWE-119
8.8
2018-07-23 CVE-2018-14521 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Aubio 0.4.6
An issue was discovered in aubio 0.4.6.
network
low complexity
aubio CWE-119
8.8
2017-12-12 CVE-2017-17555 NULL Pointer Dereference vulnerability in multiple products
The swri_audio_convert function in audioconvert.c in FFmpeg libswresample through 3.0.101, as used in FFmpeg 3.4.1, aubio 0.4.6, and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted audio file.
network
low complexity
aubio ffmpeg CWE-476
6.5
2017-12-12 CVE-2017-17554 NULL Pointer Dereference vulnerability in Aubio 0.4.6
A NULL pointer dereference (DoS) Vulnerability was found in the function aubio_source_avcodec_readframe in io/source_avcodec.c of aubio 0.4.6, which may lead to DoS when playing a crafted audio file.
local
low complexity
aubio CWE-476
5.5
2017-11-29 CVE-2017-17054 Divide By Zero vulnerability in Aubio 0.4.6
In aubio 0.4.6, a divide-by-zero error exists in the function new_aubio_source_wavread() in source_wavread.c, which may lead to DoS when playing a crafted audio file.
local
low complexity
aubio CWE-369
5.5